Security system
Defines the overarching security system to use for access,
to keep access secure. This systems keeps important data secure, while
also having resonable ux.
Trust items over yourself are trusted, while items below arent trusted.
This is, because an lower systems might as well be compromised if the higher
systems are compromised.
Top level security items
Provide security for lower level items
Should be secured by knowledge + local
Cannot be accessed by a third party without secured
Items:
- Password Manager -> password + yubikey/backup
- Password Digital backups (Container) -> password + offline volume
- Pasword Physical backups -> password + local object
High security level
Provide security for lower level items
Should be secured by Top Level Items + local factor
Might be compromised by third parties
Items:
- Email -> password + yubikey/(backup in containers)
- Physical devices -> password + local access
- Servers -> signed ssh key + physical devices
Mid security level
Might provide security
Store Important information
Can be compromised by third parties
Require multiple factors
Items:
- Github account
- Banking App
- Payment
- Microsoft
Low security level
Does not provide security
Stores relativly unimportant info
Can be compromised
Does not need multiple factors (Passwordmanager + Passwordmanager second factor)
Items:
- Pokemon showdown
- Riot Account
- Warframe account
usw..